GDPR Commitment Statement

With the EU General Data Protection Regulation (GDPR) in effect as of May 25th, 2018, KnowledgeWorks Global Ltd. implemented a GDPR-readiness program and has completed a priorities risk assessment with the help of TrustArc, a privacy consulting firm. KGL has also hired security and compliance firm ControlScan to help meet industry ISO standards and implement security controls relative to data security.

As a supplier and data processor, KGL takes data privacy and information security very seriously across the organization. As such, we have a dedicated internal compliance team working closely with our external consultants to assess security policies and procedures that improve our ability to safeguard personal data being collected, processed, or stored across any of the KGL sites. Even though KGL does not generally collect or store sensitive personal information, we treat all customer data as sensitive. We have organized our GDPR compliance efforts in the following areas:

  1. Business Process Review
  2. System/Workflow Impact Assessment
  3. Governance, Risk, and Compliance

Business Process Review

We have assessed many of our internal processes and are continuously working on improving and updating the following areas:

  • Incident response and breach notification policy
  • Privacy Notice (Articles 12, 13, and 14)
  • Cookie Policies
  • Developing Data Protection Agreements (DPAs) for Sub-Processors and Vendors
  • Implementing records of consent from data subjects (Articles 7 and 8)
  • Developing processes for protecting personal data, including privacy and information security policies and procedures

System/Workflow Impact Assessment

KGL has completed various privacy impact assessments (PIAs) to help identify potential areas of risk. The compliance team is currently remediating and implementing appropriate security controls that align with industry standards such as ISO 27001 and help improve our overall security posture.

Governance, Risk, and Compliance

KGL, and more broadly the CJK Group, know that Data Privacy and Information Security responsibilities go well beyond the scope of GDPR. In order to help drive this continuous effort, the CJK Group has established a Data Privacy Office (DPO) that will be responsible for all GRC (Governance, Risk Management, and Compliance) efforts pertaining to organizational policies and procedures that are supported by our Information Security Management System.

Any GDPR related questions can be submitted to KGL’s Compliance Team at info@kwglobal.com.

Latest Insights

  • Author Trust

    The boundary that separates legitimate from dubious academic journals—and the process by which they can rapidly descend from the former to the latter group—also serves as a cautionary case in point.

  • The Battle For Integrity X 966px

    The integrity of scholarly research has always been one of the most—if not the most—important pillars of academic publishing. Authenticity, accuracy and reliability have always been the bedrock of the industry and a source of great pride for those working within it.

  • 5 Tips For Growing Journal Revenue In A Changing Business Environment

    Remaining competitive in today’s complicated scholarly journal landscape has never been more challenging for publishers. Confronted with rapidly evolving business models, funding constraints, growing competition and stretched resources, sustaining and growing revenue can seem like a daunting task and uphill struggle at times.